How to test one's firewall strength

Discussion in 'Off Topic' started by The Stigenator, Mar 1, 2001.

  1. The Stigenator

    Joined:
    Oct 9, 1999
    Messages:
    15,188
    Likes Received:
    1
    I have a client of mine who is asking about checking/rating of how secure his firewall is.
    I need something to scan his firewall. I was thinking of GRC, however they only do limited scans.
    I was also thinking of "nmap" a linux command, however I have to see if I have nmap installed on my system, I know my brother has access to it on his work server.

    Anything else, maybe some professional place that rates security?

    Edit:

    PM me anything that you dont want to post here.
     
  2. Yzzim

    Yzzim Lifer

    Joined:
    Feb 13, 2000
    Messages:
    11,990
    Likes Received:
    1
    I heard on the news that you can hire hackers to test out your security. I'm sure if you did a search you'd come up with a couple listings
     
  3. randomlinh

    randomlinh Lifer

    Joined:
    Oct 9, 1999
    Messages:
    20,855
    Likes Received:
    1
    try here

    i don't know how well it does, but it's a start.
     
  4. aceO07

    aceO07 Diamond Member

    Joined:
    Nov 6, 2000
    Messages:
    4,492
    Likes Received:
    0
    Bump, I'm interested in knowing more about this too..

    I did some research last month and came up with these results. HackerWhacker provides a first free extensive scan. I also thought SecurityPortal seemed interesting, but I only visited once.
     
  5. Guest

    Get some script kiddies to go after it with their t3s.
    :)
     
  6. Green Man

    Green Man Golden Member

    Joined:
    Jan 21, 2001
    Messages:
    1,110
    Likes Received:
    0
  7. Batti

    Batti Golden Member

    Joined:
    Feb 2, 2000
    Messages:
    1,609
    Likes Received:
    0
    Max Vision from whitehats.com does penetration testing. Look here

    If you decide to do an nmap probe yourself, get everything in writing!!! This is a crime in many areas, and more than one well intentioned employee or consultant has run afoul doing this.
     
  8. rahvin

    rahvin Elite Member

    Joined:
    Oct 10, 1999
    Messages:
    8,476
    Likes Received:
    0
    Run an nmap "heavy" scan, it will hammer the server looking for known vulnerabilities. nmap is the program of choice for script kiddies.
     
  9. warcleric

    warcleric Banned

    Joined:
    May 31, 2000
    Messages:
    2,384
    Likes Received:
    0
    Go to efnet and join #hack, and say &quot;I have the best firewall in the world at 255.255.255.255 <insert your ip address here>.
     
  10. BigSmooth

    BigSmooth Lifer

    Joined:
    Aug 18, 2000
    Messages:
    10,480
    Likes Received:
    0
    Isn't there some site, I think it's www.vulnerabilities.org, that I think Emulex has linked in his sig? I think it tests security or something like that, I am too lazy to follow my own link. :)
     
  11. Emulex

    Emulex Diamond Member

    Joined:
    Jan 28, 2001
    Messages:
    9,759
    Likes Received:
    0
    yup we run the latest devel version of the popular nessus scan online. no cost. nada. zip. free service. If you point this at a box, it will set off all the alarms, and put the smack down on your box, router, server. I still haven't figured out how it causes my windows me box to hard reboot without a blue screen. Crappy windows tcp/ip stack.

    Nessus, ISS, Retina, Cybercop, all good stuff. I use them all, each have their strong and weak points. Nessus is probably the best of all, considering it does most and then some of all the other scanning softwares, and is free :)

    my box (see below sig) scans about 150 servers a day nowadays.
     
  12. TheManiac

    TheManiac Senior member

    Joined:
    Jan 8, 2001
    Messages:
    275
    Likes Received:
    0
    Emulex's service rox!! He tested me out...
     
  13. Emulex

    Emulex Diamond Member

    Joined:
    Jan 28, 2001
    Messages:
    9,759
    Likes Received:
    0
    yah we had some bugs testing the new stable version 1.0.8 recently, so we switched back to the 1.1.0 beta, its much faster and more reliable (Strange). Good program no less.. Hopefully the bugs will be gone soon.